I am pleased to announce the immediate availability of versions 1.6 and 1.8 of the nginx HTTP and reverse proxy server on CentOS Linux 7 x86_64, delivered via a Software Collection (SCL) built by the SCLo Special Interest Group (https://wiki.centos.org/SpecialInterestGroup/SCLo). QuickStart ---------- You can get started in three easy steps: $ sudo yum install centos-release-scl $ sudo yum install rh-nginx18 $ scl enable rh-nginx18 bash At this point you should be able to use nginx just as a normal application. An example of commands run might be: $ nginx -v $ systemctl start rh-nginx18-nginx In order to view the individual components included in this collection, including additional subpackages, you can run: $ sudo yum list rh-nginx18* About Software Collections -------------------------- Software Collections give you the power to build, install, and use multiple versions of software on the same system, without affecting system-wide installed packages. Each collection is delivered as a group of RPMs, with the grouping being done using the name of the collection as a prefix of all packages that are part of the software collection. The collection nginx16 and rh-nginx18 deliver versions 1.6 and 1.8 of the nginx, an HTTP and reverse proxy server with a focus on high concurrency, performance and low memory usage. The collection nginx16 delivers a daemon called nginx16-nginx and the collection rh-nginx18 delivers a daemon called rh-nginx18-nginx. For more on the nginx, see http://nginx.org. The SCLo SIG in CentOS ---------------------- The Software Collections SIG group is an open community group co-ordinating the development of the SCL technology, and helping curate a reference set of collections. In addition to the nginx collections being released here, we also build and deliver other databases, web servers, and language stacks including multiple versions of PostgreSQL, MariaDB, Apache HTTP Server, NodeJS, Ruby, Python and others. Software Collections SIG release was announced at https://lists.centos.org/pipermail/centos-announce/2015-October/021446.html You can learn more about Software Collections concepts at: http://softwarecollections.org You can find information on the SIG at https://wiki.centos.org/SpecialInterestGroup/SCLo ; this includes howto get involved and help with the effort. We meet every second Wednesday at 16:00 UTC in #centos-devel (ref: https://www.centos.org/community/calendar), for an informal open forum open to anyone who might have comments, concerns or wants to get started with SCL's in CentOS. Enjoy! Honza SCLo SIG member
Monthly Archives: December 2015
Announcing release for Phusion Passenger 4.0 on CentOS Linux 6 x86_64 SCL
I am pleased to announce the immediate availability of Phusion Passenger in version 4.0 on CentOS Linux 6 x86_64, delivered via a Software Collection (SCL) built by the SCLo Special Interest Group (https://wiki.centos.org/SpecialInterestGroup/SCLo). QuickStart ---------- You can get started in three easy steps: $ sudo yum install centos-release-scl $ sudo yum install rh-passenger40 rh-passenger40-ruby22 nginx16 $ scl enable rh-passenger40 rh-ruby22 bash At this point you should be able to use passenger just as a normal application. An examples of commands run might be: $ passenger start $ passenger status In order to view the individual components included in this collection, including other packages that allow you to use passenger with Ruby 2.0 or 1.9.3, instead of 2.2 as in example above, you can run: $ sudo yum list rh-passenger40* The rh-passenger40 collection relies either on the rh-ruby22, ruby200 or ruby193 collection and the nginx16 collection, so you need to install one of the following packages: rh-passenger40-ruby193, rh-passenger40-ruby200, or rh-passenger40-ruby22. About Software Collections -------------------------- Software Collections give you the power to build, install, and use multiple versions of software on the same system, without affecting system-wide installed packages. Each collection is delivered as a group of RPMs, with the grouping being done using the name of the collection as a prefix of all packages that are part of the software collection. The collection rh-passenger40 delivers Phusion Passenger, a web and application server designed to be fast, robust and lightweight. The rh-passenger40 Software Collection can also be used with Apache HTTP Server from the httpd24 Software Collection. To do so, install the rh-passenger40-mod_passenger package. For more on the Phusion Passenger, see https://www.phusionpassenger.com. The SCLo SIG in CentOS ---------------------- The Software Collections SIG group is an open community group co-ordinating the development of the SCL technology, and helping curate a reference set of collections. In addition to the Phusion Passenger collections being released here, we also build and deliver databases, web servers, and language stacks including multiple versions of PostgreSQL, MariaDB, Apache HTTP Server, NodeJS, Ruby, Python and others. Software Collections SIG release was announced at https://lists.centos.org/pipermail/centos-announce/2015-October/021446.html You can learn more about Software Collections concepts at: http://softwarecollections.org You can find information on the SIG at https://wiki.centos.org/SpecialInterestGroup/SCLo ; this includes howto get involved and help with the effort. We meet every Wednesday at 16:00 UTC in #centos-devel (ref: https://www.centos.org/community/calendar), for an informal open forum open to anyone who might have comments, concerns or wants to get started with SCL's in CentOS. Enjoy! Honza SCLo SIG member
Announcing release for Phusion Passenger 4.0 on CentOS Linux 7 x86_64 SCL
I am pleased to announce the immediate availability of Phusion Passenger in version 4.0 on CentOS Linux 7 x86_64, delivered via a Software Collection (SCL) built by the SCLo Special Interest Group (https://wiki.centos.org/SpecialInterestGroup/SCLo). QuickStart ---------- You can get started in three easy steps: $ sudo yum install centos-release-scl $ sudo yum install rh-passenger40 rh-passenger40-ruby22 nginx16 $ scl enable rh-passenger40 rh-ruby22 bash At this point you should be able to use passenger just as a normal application. An examples of commands run might be: $ passenger start $ passenger status In order to view the individual components included in this collection, including other packages that allow you to use passenger with Ruby 2.0 or 1.9.3, instead of 2.2 as in example above, you can run: $ sudo yum list rh-passenger40* The rh-passenger40 collection relies either on the rh-ruby22, ruby200 or ruby193 collection and the nginx16 collection, so you need to install one of the following packages: rh-passenger40-ruby193, rh-passenger40-ruby200, or rh-passenger40-ruby22. About Software Collections -------------------------- Software Collections give you the power to build, install, and use multiple versions of software on the same system, without affecting system-wide installed packages. Each collection is delivered as a group of RPMs, with the grouping being done using the name of the collection as a prefix of all packages that are part of the software collection. The collection rh-passenger40 delivers Phusion Passenger, a web and application server designed to be fast, robust and lightweight. The rh-passenger40 Software Collection can also be used with Apache HTTP Server from the httpd24 Software Collection. To do so, install the rh-passenger40-mod_passenger package. For more on the Phusion Passenger, see https://www.phusionpassenger.com. The SCLo SIG in CentOS ---------------------- The Software Collections SIG group is an open community group co-ordinating the development of the SCL technology, and helping curate a reference set of collections. In addition to the Phusion Passenger collections being released here, we also build and deliver databases, web servers, and language stacks including multiple versions of PostgreSQL, MariaDB, Apache HTTP Server, NodeJS, Ruby, Python and others. Software Collections SIG release was announced at https://lists.centos.org/pipermail/centos-announce/2015-October/021446.html You can learn more about Software Collections concepts at: http://softwarecollections.org You can find information on the SIG at https://wiki.centos.org/SpecialInterestGroup/SCLo ; this includes howto get involved and help with the effort. We meet every Wednesday at 16:00 UTC in #centos-devel (ref: https://www.centos.org/community/calendar), for an informal open forum open to anyone who might have comments, concerns or wants to get started with SCL's in CentOS. Enjoy! Honza SCLo SIG member
Announcing release for Varnish Cache 4 on CentOSLinux 6 x86_64 SCL
I am pleased to announce the immediate availability of version 4 of the Varnish Cache Server on CentOS Linux 6 x86_64, delivered via a Software Collection (SCL) built by the SCLo Special Interest Group (https://wiki.centos.org/SpecialInterestGroup/SCLo). QuickStart ---------- You can get started in three easy steps: $ sudo yum install centos-release-scl $ sudo yum install rh-varnish4 $ scl enable rh-varnish4 bash At this point you should be able to use varnish just as a normal application. An example of commands run might be: $ service rh-varnish4-varnish start $ varnishtop In order to view the individual components included in this collection, including additional subpackages, you can run: $ sudo yum list rh-varnish4* About Software Collections -------------------------- Software Collections give you the power to build, install, and use multiple versions of software on the same system, without affecting system-wide installed packages. Each collection is delivered as a group of RPMs, with the grouping being done using the name of the collection as a prefix of all packages that are part of the software collection. The collection rh-varnish4 delivers version 4 of the Varnish Cache, a high-performance HTTP reverse proxy. The daemon is called rh-varnish4-varnish. For more on the Varnish HTTP, see https://www.varnish-cache.org. The SCLo SIG in CentOS ---------------------- The Software Collections SIG group is an open community group co-ordinating the development of the SCL technology, and helping curate a reference set of collections. In addition to the Varnish Cache collection being released here, we also build and deliver other databases, web servers, and language stacks including multiple versions of PostgreSQL, MariaDB, Apache HTTP Server, NodeJS, Ruby, Python and others. Software Collections SIG release was announced at https://lists.centos.org/pipermail/centos-announce/2015-October/021446.html You can learn more about Software Collections concepts at: http://softwarecollections.org You can find information on the SIG at https://wiki.centos.org/SpecialInterestGroup/SCLo ; this includes howto get involved and help with the effort. We meet every second Wednesday at 16:00 UTC in #centos-devel (ref: https://www.centos.org/community/calendar), for an informal open forum open to anyone who might have comments, concerns or wants to get started with SCL's in CentOS. Enjoy! Honza SCLo SIG member
Announcing release for Apache HTTP Server 2.4 on CentOS Linux 6 x86_64 SCL
I am pleased to announce the immediate availability of version 2.4 of the Apache HTTP Server on CentOS Linux 6 x86_64, delivered via a Software Collection (SCL) built by the SCLo Special Interest Group (https://wiki.centos.org/SpecialInterestGroup/SCLo). QuickStart ---------- You can get started in three easy steps: $ sudo yum install centos-release-scl $ sudo yum install httpd24-httpd $ scl enable httpd24 bash At this point you should be able to use httpd just as a normal application. An examples of commands run might be: $ service httpd24-httpd start $ httpd -h In order to view the individual components included in this collection, including additional subpackages, you can run: $ sudo yum list httpd24* About Software Collections -------------------------- Software Collections give you the power to build, install, and use multiple versions of software on the same system, without affecting system-wide installed packages. Each collection is delivered as a group of RPMs, with the grouping being done using the name of the collection as a prefix of all packages that are part of the software collection. The collection httpd24 delivers version 2.4 of the Apache HTTP server (with a daemon called httpd24-httpd) and related server modules, like mode_ldap, mod_ssl, mod_auth_kerb and others. For more on the Apatch HTTP, see https://httpd.apache.org. The SCLo SIG in CentOS ---------------------- The Software Collections SIG group is an open community group co-ordinating the development of the SCL technology, and helping curate a reference set of collections. In addition to the Apache HTTP Server collection being released here, we also build and deliver other databases, web servers, and language stacks including multiple versions of PostgreSQL, MariaDB, NodeJS, Ruby, Python and others. Software Collections SIG release was announced at https://lists.centos.org/pipermail/centos-announce/2015-October/021446.html You can learn more about Software Collections concepts at: http://softwarecollections.org You can find information on the SIG at https://wiki.centos.org/SpecialInterestGroup/SCLo ; this includes howto get involved and help with the effort. We meet every second Wednesday at 16:00 UTC in #centos-devel (ref: https://www.centos.org/community/calendar), for an informal open forum open to anyone who might have comments, concerns or wants to get started with SCL's in CentOS. Enjoy! Honza SCLo SIG member
Announcing release for Apache HTTP Server 2.4 on CentOS Linux 7 x86_64 SCL
I am pleased to announce the immediate availability of version 2.4 of the Apache HTTP Server on CentOS Linux 7 x86_64, delivered via a Software Collection (SCL) built by the SCLo Special Interest Group (https://wiki.centos.org/SpecialInterestGroup/SCLo). QuickStart ---------- You can get started in three easy steps: $ sudo yum install centos-release-scl $ sudo yum install httpd24-httpd $ scl enable httpd24 bash At this point you should be able to use httpd just as a normal application. An examples of commands run might be: $ service httpd24-httpd start $ httpd -h In order to view the individual components included in this collection, including additional subpackages, you can run: $ sudo yum list httpd24* About Software Collections -------------------------- Software Collections give you the power to build, install, and use multiple versions of software on the same system, without affecting system-wide installed packages. Each collection is delivered as a group of RPMs, with the grouping being done using the name of the collection as a prefix of all packages that are part of the software collection. The collection httpd24 delivers version 2.4 of the Apache HTTP server (with a daemon called httpd24-httpd) and related server modules, like mode_ldap, mod_ssl, mod_auth_kerb and others. For more on the Apatch HTTP, see https://httpd.apache.org. The SCLo SIG in CentOS ---------------------- The Software Collections SIG group is an open community group co-ordinating the development of the SCL technology, and helping curate a reference set of collections. In addition to the Apache HTTP Server collection being released here, we also build and deliver other databases, web servers, and language stacks including multiple versions of PostgreSQL, MariaDB, NodeJS, Ruby, Python and others. Software Collections SIG release was announced at https://lists.centos.org/pipermail/centos-announce/2015-October/021446.html You can learn more about Software Collections concepts at: http://softwarecollections.org You can find information on the SIG at https://wiki.centos.org/SpecialInterestGroup/SCLo ; this includes howto get involved and help with the effort. We meet every second Wednesday at 16:00 UTC in #centos-devel (ref: https://www.centos.org/community/calendar), for an informal open forum open to anyone who might have comments, concerns or wants to get started with SCL's in CentOS. Enjoy! Honza SCLo SIG member
Announcing release for Varnish Cache 4 on CentOSLinux 7 x86_64 SCL
I am pleased to announce the immediate availability of version 4 of the Varnish Cache Server on CentOS Linux 7 x86_64, delivered via a Software Collection (SCL) built by the SCLo Special Interest Group (https://wiki.centos.org/SpecialInterestGroup/SCLo). QuickStart ---------- You can get started in three easy steps: $ sudo yum install centos-release-scl $ sudo yum install rh-varnish4 $ scl enable rh-varnish4 bash At this point you should be able to use varnish just as a normal application. An example of commands run might be: $ systemctl start rh-varnish4-varnish $ varnishtop In order to view the individual components included in this collection, including additional subpackages, you can run: $ sudo yum list rh-varnish4* About Software Collections -------------------------- Software Collections give you the power to build, install, and use multiple versions of software on the same system, without affecting system-wide installed packages. Each collection is delivered as a group of RPMs, with the grouping being done using the name of the collection as a prefix of all packages that are part of the software collection. The collection rh-varnish4 delivers version 4 of the Varnish Cache, a high-performance HTTP reverse proxy. The daemon is called rh-varnish4-varnish. For more on the Varnish HTTP, see https://www.varnish-cache.org. The SCLo SIG in CentOS ---------------------- The Software Collections SIG group is an open community group co-ordinating the development of the SCL technology, and helping curate a reference set of collections. In addition to the Varnish Cache collection being released here, we also build and deliver other databases, web servers, and language stacks including multiple versions of PostgreSQL, MariaDB, Apache HTTP Server, NodeJS, Ruby, Python and others. Software Collections SIG release was announced at https://lists.centos.org/pipermail/centos-announce/2015-October/021446.html You can learn more about Software Collections concepts at: http://softwarecollections.org You can find information on the SIG at https://wiki.centos.org/SpecialInterestGroup/SCLo ; this includes howto get involved and help with the effort. We meet every second Wednesday at 16:00 UTC in #centos-devel (ref: https://www.centos.org/community/calendar), for an informal open forum open to anyone who might have comments, concerns or wants to get started with SCL's in CentOS. Enjoy! Honza SCLo SIG member
Employees ‘the biggest threat’ to enterprise cybersecurity programs
A new survey finds that the majority of corporate information security practitioners consider employees to be the biggest risk to their company’s cybersecurity program.
The post Employees ‘the biggest threat’ to enterprise cybersecurity programs appeared first on We Live Security.
Oracle Ordered to Publicly Admit Misleading Java Security Updates
Security issues have long tantalized over 850 Million users that have Oracle’s Java software installed on their computers. The worst thing is that the software was not fully updated or secure for years, exposing millions of PCs to attack.
And for this reason, Oracle is now paying the price.
Oracle has been accused by the US government of misleading consumers about the security of its Java
Attacks on Android and large-scale infections are among the main security threats in 2016
Panda Security, global leader in cloud based security solutions, has announced its predictions regarding the main problems that could affect IT security in 2016. The coming year will be filled with threats that could affect private users, small businesses, and large corporations.
The creation and spreading of new malware samples, aimed at infecting users, will continue growing at an exponential rate, just as we have seen in in 2015 where the number of new samples registered daily reached 230,000.
During 2016 there is a predicted increase in infections via JavaScript and a growth in the number of cybercriminals using Powershell, a tool included in Windows 10 that allows scripts with all types of functionalities to be executed, which could be used to attack users.
Large scale and mobile based attacks
Cybercriminals are looking for ways to attack the greatest number of users and businesses, while achieving the greatest possible profit.
Because of this, they will continue to use tools such as Exploit Kits, as many current solutions aren’t capable of combatting this type of attack effectively, which means its rate of infection is very high. For the same reason, malware on mobiles will also increase, especially for Android, which is the most popular operating system on the market.
“Although Android attacks have been commonplace in recent years, the news for 2016 is the manner in which mobiles will be infected. We will see more threats that root the device, which makes eliminating it a near impossible task for an antivirus, except for those that come installed from the factory”, says Luis Corrons, Technical Director of PandaLabs.
There will also be an increase in direct attacks through rootkit techniques, which allow the hackers to hide themselves from the operating system and security solutions.
Internet of Things and mobile payment
2016 will be the year in which the Internet of Things flourishes, with more devices than ever connected to the Internet.
With this in mind, cybercriminals will carry out attacks on these devices, as we have already seen in 2015 in the case of cars whose software is connected to the Internet, which allowed for the remote control of the vehicle.
Payment platforms on mobile devices will be under scrutiny as cybercriminals looks to take advantage of them, as they could be easy ways for criminals to steal money directly.
“If any of the platforms becomes more popular compared to the others, it will be the first one to be looked at by the attackers as they search for weaknesses in its system”, continued Luis Corrons.
Main challenges for security
In the face of the current panorama, where the number of threats is growing exponentially and attacks are becoming more sophisticated, users and businesses will have to adopt extra security measures to remain protected against the dangers of the Internet in 2016.
What’s more, for businesses there are also threats that could seriously damage both their reputation and finances. Cybercriminals will make it their goal to steal confidential information relating to the company (financial data, strategic plans, etc.), and even information belonging to their customers. Once they have it, they will try to blackmail the company into paying a ransom to get the information back, a method known as Cryptolocker.
To face the complexity of these attacks, and those that await us in 2016, it will be necessary for users and businesses to have security tools and solutions that analyze and classify the behavior of all executables, and that also offer advanced protection to prevent and act against security threats.
The post Attacks on Android and large-scale infections are among the main security threats in 2016 appeared first on MediaCenter Panda Security.